auth controller needs no pundit

This commit is contained in:
Mark Moser 2016-09-21 15:20:43 -05:00
parent 75a4fbf71a
commit d3205a6080
2 changed files with 6 additions and 2 deletions

View File

@ -3,6 +3,10 @@ module Admin
class AuthController < AdminController class AuthController < AdminController
skip_before_action :authorize_user skip_before_action :authorize_user
# bypass pundit lockdowns for auth requests.
after_action :skip_policy_scope
after_action :skip_authorization
def login def login
end end

View File

@ -4,8 +4,8 @@ class AdminController < ApplicationController
layout 'admin' layout 'admin'
before_action :authorize_user before_action :authorize_user
# after_action :verify_authorized, except: :index after_action :verify_authorized, except: :index
# after_action :verify_policy_scoped, only: :index after_action :verify_policy_scoped, only: :index
rescue_from Pundit::NotAuthorizedError, with: :user_not_authorized rescue_from Pundit::NotAuthorizedError, with: :user_not_authorized